Homepage tabWindows tabGames tabDrivers tabMac tabLinux tabScripts buttonMobile tabHandheld tabGadgets tabNews tab


NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
MEET THE EDITORS >>
Home / News / Security / Advisories

Advisories

Oh No, Norton Antivirus Is Once Again Dangerous for My PC!

Symantec's tools vulnerable to attacks

By Bogdan Popa, Security and Search Engines Editor

12th of July 2007, 20:31 GMT

Adjust text size:


Norton Antivirus
Enlarge picture
Symantec is often described as one of the best security companies on the Internet but sometimes you wouldn't say that because most of its products are the subjects of the security advisories. Today, numerous Symantec solutions proved us that a single security hole can affect the entire computer because a successful exploitation of the flaw can lead to higher privileges for the attacker. Symantec Norton Antivirus, Symantec Norton Internet Security, Symantec
Norton Personal Firewall and Symantec Mail Security in most of their versions are included in the security alerts.

According to Symantec, there is a problem with the way these products handle RAR and CAB files, allowing the attackers to compromise an affected system using a simple Denial Of Service attempt.

"The first vulnerability is related to the decomposition of RAR files. Modifying the RAR file header in a specific way, causes the decomposer to enter an infinite loop causing a Denial of Service," Symantec said in the advisory.

"The second vulnerability is related to the decomposition of CAB files. The Symantec Decomposer fails to perform proper bounds checks when copying from the CAB archive. This may result in the possibility of arbitary code execution on the vulnerable system."

As usual, you're encouraged to install the latest version of the vulnerable applications as well as updating the virus database to the latest definitions. But this time, it is somehow different because the applications that were supposed to defend our computers are vulnerable as well so there is no security ensured. However, you can remain up-to-date with the latest virus definitions using the LiveUpdate function included in most of the Symantec products.

"Symantec engineers have verified and corrected these issues in all currently supported products. Updates are available for supported products. Symantec recommends customers apply the latest product update available for their supported product versions to enhance their security posture and protect against potential security threats of this nature."

TAGS:

 symantec | norton | antivirus | security | flaw
Read by 1,602 user(s) | Add comment | Link to this article TWEET THIS


Article rating:
Good (3.6/5) 5 vote(s)    

Subscribe to news | Print article | Send to friend

© Copyright 2001-2009 Softpedia
Contact:

 

 

SEARCH THE NEWS ARCHIVE :




Today's News | Yesterday's News | News Archive


MORE RELATED ARTICLES:


Symantec Is More Vulnerable Than Secure

The Vulnerable Friday Continues with Norton Antivirus

Symantec: Windows Vista's Security Strategy Is Wrong

The Symantec Employees Are Using Kaspersky!

Symantec Offers Free Licenses

Norton Firewall Gets Vulnerable One More Time

Symantec Exposes Windows Vista

User opinions:

No user comments yet.
Be the first to express your opinion using the form below!

Share your opinion:

Your Name:
Your Email Address:
(will not be used for commercial purposes)
Solve this to prove you're not a bot: =
Your review/opinion:

 




Windows tabGames tabDrivers tabMac tabLinux tabScripts tabMobile tabHandheld tabGadgets tabNews tab

SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   ENTER NEWS SITE   |   ENGLISH BOARD   |   ROMANIAN FORUM
© 2001 - 2009 Softpedia. All rights reserved.
Softpedia® and the Softpedia® logo are registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use | Update your software | Archive